Arch & Emacs & C Benutzer // EECS Crypto PhDing // #Cantonese // Folgen Sie mir bitte nicht, da ich möchte bescheiden sein // follow & like ≠ endorsement
‼️ A 16-year-old Linux KVM vulnerability called Januscape (CVE-2026-53359) lets a root user inside a guest VM escape to the host on Intel and AMD x86 systems, and a proof of concept that crashes hosts is already public.
Canonical says patched Ubuntu kernels are still pending for all releases and recommends disabling nested virtualization in the meantime.
EU friends, read closely and retweet aggressively.
Chat Control will mean scanning of private messages and a complete destruction of your privacy as a citizen.
You don't need to be a tech expert to protect yourself. Here's a setup and instructions that will that help a lot in retaining your privacy:
Step 1: Buy a phone from outside the EU.
This is absolutely non-negotiable and the foundation of your entire privacy stack. Buy a US or Japanese model Google Pixel phone if possible. It's easier to set up privately
Step2: Use Signal for messaging.
Step 3: Download all your apps from third party sources; Discord, Whatsapp, TikTok — all of it.
Stop downloading them from Google Play and Apple's App Store. This is called "sideloading". Most of the apps you use today can be downloaded as sideloadables, including Twitter/X itself.
Step 4: Get a VPN
Consider Mullvad or Proton VPN since they don't keep logs. This is a powerful way to hide your location even if the EU attempts to ban virtual private networks.
For Android:
Consider GrapheneOS. It's a free privacy-focused system. It removes a lot of tracking.
This combo makes it much harder for unwanted scanning or tracking. It's not perfect, but way better than default settings.
Look it up on GrapheneOS dot org or PrivacyGuides dot org.
Start small and tell your MEPs you want real privacy, not mass surveillance.
Our tireless fight against Brussels' hegemonic steamrolling of our sovereignty continues. Never stop.
Stay secret! Stay safe!
#Privacy #EU #ChatControl
Larry the cat has outlasted six prime ministers.
Now that Starmer has resigned, Larry is preparing for his seventh.
Follow the latest: https://t.co/08jvhcBz3Q
❗️BREAKING: sentences handed down in 🇨🇳 interference (HKETO) case:
Bill Yuen 8 years and Peter Wai 10 years in jail (Wai’s sentence includes misconduct in public office).
Almost in tears with relief, on behalf of so many who live under threat of intimidation from Beijing. This is a landmark moment for the UK. For years, dissidents and experts have warned that Beijing’s interference operations are running amok in Britain. Today, the courts have drawn a hard line: run hostile intelligence operations against people on British soil, you’re not going home to a heroic welcome, you're going to a UK prison cell.
The Chinese have a saying 不作不死 (no doing, no dying). In crude English: FAFO. Beyond happy that this is the future Beijing’s proxies can look forward to if they behave in this way, thanks to the National Security Act.
【网络审查研究者王一言回中国后失联近2年】中国人权对网络审查研究者王一言持续失联深表关切,并呼吁中国政府立即说明其下落和现状,保障其人身安全和基本权利。根据公开资料,王一言(Yiyan Wang,又名 Gaukas Wang)是一位网络安全研究者和开源社区贡献者,长期从事中国互联网审查、防火墙技术以及反审查工具的研��。他于2018年前往美国,就读于科罗拉多大学博尔德分校(University of Colorado Boulder),并于2021年以最高荣誉(summa cum laude)获得电子与计算机工程学士学位。此后,他继续在该校攻读硕士和博士学位,师从网络审查研究专家 Eric Wustrow。
王一言长期活跃于国际开源社区。他曾表示,自2017年以来一直致力于开发帮助���户突破互联网审查的技术工具。在其个人主页首页,他引用了一句中国互联网发展史上的著名话语:
“Across the Great Wall we can reach every corner in the world.”(跨越长城,走向世界。)
这句话诞生于1987年中国与国际互联网建立首次电子邮件连接的历史时刻,象征着开放互联网、自由交流与连接世界的理想,也体现了他长期关注信息自由与开放网络的理念。
王一言的研究重点包括中国防火墙(Great Firewall)、网络审查测量、翻墙协议分析以及审查规避技术。他参与国际学术合作和开源项目,为理解互联网审查机制及其影响作出了重要贡献。
据朋友和同行反映,王一言于2024年夏季返回中国。此后不久,他与外界失去联系。自2024年7月以来,外界无法确认其行踪,也无法通过其惯常渠道与其取得联系。迄今其具体处境仍然不明。
中国人权目前无法独立核实王一言失联的原因。然而,鉴于中国政府长期以来对人权捍卫者、记者、律师、学者以及从事敏感议题研究人员的打压记录,我们对其安全状况深感担忧。
中国人权呼吁:
中国政府立即说明王一言的下落和法律状态;
如其被限制人身自由,应允许其与家属和律师联系;
保障其人身自由、学术研究自由和表达自由;
国际学术界、网络安全研究界、开源社区和人权组织持续关注王一言案件;
欢迎任何了解王一言近况或掌握相关信息的人士与中国人权联系,以便核实情况、推动国际社会关注并开展有效声援。
互联网自由和学术研究不应成为被惩罚的理由。我们呼吁中国政府保障王一言的人身安全,并尽快让外界获知其真实情况。
中国人权同时欢迎任何知情人士提供与王一言有关的信息,包括其近况、法律状态或其他可核实线索。任何信息都可能有助于外界了解其处境,并推动国际社会采取行动予以关注和声援。
Human Rights in China(中国人权)
2026年6月15日
🚨 Introducing "ITScape" (CVE-2026-46316)
A Guest-to-Host Escape in KVM/arm64. Guest-side actions alone exploit a use-after-free to run root-privileged code in the host kernel.
Unlike the commonly published QEMU escapes, the bug lives in in-kernel KVM, not QEMU. On a successful exploit, commands run with host kernel privilege rather than the privilege of a user process, threatening the guest-host isolation of multi-tenant arm64 public clouds.
To the best of public knowledge, the first Guest-to-Host Escape Exploit targeting in-kernel KVM/arm64.
Details: https://t.co/CtZOQEzIdg